Back to Home

Privacy Policy for iGate

Effective Date: April 8, 2026 Last Updated: April 8, 2026

1. Introduction

iGate ("we", "our", "us"), operated by iGate, respects your privacy and is committed to protecting your personal and business data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, applications, APIs, and services ("Services").

By using iGate OS, you agree to the practices described in this policy.

2. Information We Collect

2.1 Personal Information

We may collect:

  • Full name, email address, phone number
  • Company name and job title
  • Billing and payment information
  • Government or regulatory identifiers (if required)

2.2 Technical & Usage Data

  • IP address, device type, browser type
  • Log files and system activity
  • AI model inputs, outputs, and usage patterns
  • API usage metrics and performance data

2.3 Business & Content Data

  • Documents, datasets, and files uploaded to the platform
  • AI prompts and generated outputs
  • Workflow configurations and system integrations

3. How We Use Information

We use your data to:

  • Provide, operate, and improve iGate OS
  • Train, optimize, and enhance AI models (unless opted out under enterprise agreements)
  • Ensure security, fraud prevention, and compliance
  • Process transactions and billing
  • Communicate updates, alerts, and support messages

4. Data Sharing & Disclosure

We may share data with:

  • Cloud infrastructure providers and technology partners
  • Regulatory authorities if required by law
  • Affiliates, subsidiaries, and strategic partners
  • Third-party integrations authorized by the user

We do NOT sell personal data.

5. Data Ownership & AI Usage

  • Users retain ownership of their data.
  • By using iGate OS, you grant us a limited, worldwide, non-exclusive license to process, store, and analyze data to deliver services.
  • AI-generated outputs are provided "as-is" without guarantees of accuracy or ownership exclusivity.

6. Data Retention

We retain data:

  • As long as necessary to provide services
  • To comply with legal obligations
  • For legitimate business purposes (analytics, security)

We may anonymize data for long-term use.

7. Security

We implement:

  • Encryption (in transit and at rest)
  • Access control and authentication mechanisms
  • Continuous monitoring and threat detection

However, no system is 100% secure.

8. International Data Transfers

Your data may be processed in multiple jurisdictions. By using iGate OS, you consent to such transfers.

9. Your Rights

Depending on jurisdiction, you may:

  • Access your data
  • Request correction or deletion
  • Object to processing
  • Request data portability

10. Third-Party Services

iGate OS may integrate with third-party services. We are not responsible for their privacy practices.

11. Changes to This Policy

We may update this policy at any time. Continued use of the platform constitutes acceptance.

AI Governance Policy

1. Responsible AI Principles

iGate commits to:

  • Fairness and non-discrimination
  • Transparency and explainability (where feasible)
  • Accountability and human oversight
  • Privacy and data protection

2. Acceptable Use of AI

Users must NOT use AI for:

  • Illegal activities
  • Harmful or deceptive practices
  • Generating misinformation, fraud, or abuse
  • Violating intellectual property rights

3. Data Classification Framework

3.1 Categories

  • Public Data – Non-sensitive
  • Internal Data – Business-sensitive
  • Confidential Data – Restricted access
  • Highly Sensitive Data – Regulated (e.g., financial, health)

3.2 Handling Rules

  • Encryption required for confidential data
  • Restricted access for sensitive categories
  • Logging and audit trails mandatory

4. Model Accountability

4.1 Limitations

AI systems:

  • May produce inaccurate or biased outputs
  • Are not a substitute for professional judgment

4.2 Human Oversight

Customers are responsible for reviewing AI outputs and validating critical decisions.

5. Audit & Monitoring

iGate may:

  • Log AI interactions
  • Monitor misuse
  • Suspend accounts violating policy

6. Compliance Alignment

This policy aligns with:

  • Saudi SDAIA AI Ethics Principles
  • Global AI governance frameworks

7. Enforcement

Violations may result in:

  • Suspension
  • Termination
  • Legal action

Data Processing Agreement (DPA)

2.1 Roles

  • Customer = Data Controller
  • iGate = Data Processor

2.2 Processing Scope

iGate processes data only to:

  • Deliver services
  • Maintain security
  • Improve platform (unless opted out)

2.3 Data Protection Measures

  • Encryption at rest and in transit
  • Role-based access control (RBAC)
  • Data minimization
  • Logging & monitoring

2.4 Subprocessors

iGate may use:

  • Cloud providers (e.g., AWS, Azure)
  • Infrastructure vendors

All subprocessors must meet equivalent security standards.

2.5 Data Breach Protocol

  • Notification within 72 hours
  • Incident report and mitigation plan
  • Cooperation with customer/regulator

2.6 Data Subject Rights

iGate supports:

  • Access, correction, deletion
  • Data portability (where applicable)

2.7 Cross-Border Transfers

Permitted with:

  • Adequate safeguards
  • Customer consent where required

12. Contact

For privacy inquiries:

📧 privacy@igate.sa

📍 iGate Headquarters, Saudi Arabia